discourse/lib/content_security_policy
Gerhard Schlager 2cca14d510 FEATURE: Add hidden setting to allow unsafe-eval in CSP
This new setting defaults to `true` for now, until we make sure that all official plugins and theme components work without `unsafe-eval` in the CSP.
2019-12-03 21:09:08 +01:00
..
builder.rb FEATURE: allow extending CSP base-uri and object-src 2019-01-09 15:34:14 -05:00
default.rb FEATURE: Add hidden setting to allow unsafe-eval in CSP 2019-12-03 21:09:08 +01:00
extension.rb FEATURE: Calculate CSP based on active themes (#6976) 2019-02-11 12:32:04 +00:00
middleware.rb FEATURE: Calculate CSP based on active themes (#6976) 2019-02-11 12:32:04 +00:00